Vanta is hiring a
GRC Subject Matter Expert

Summary

The job is for a Security Analyst at Vanta. The role involves supporting the building and maintenance of compliance frameworks, managing responses to vendor security questionnaires, reviewing security alerts and escalations, improving existing and launching new security and compliance processes, programs, and policies, and partnering with various teams to respond to internal security-related questions and requests.

Requirements

• 1-3 years of experience in an information security role
• Excellent verbal and written communication skills, interpersonal, and teamwork skills
• Strong attention to detail and a desire and excitement to work with controls, control frameworks, and mapping
• Passion for large and complex spreadsheets is a plus
• Prior demonstration of high initiative and problem-solving skills, especially in a fast-paced environment
• Ability to accept and manage change
• Desire and willingness to learn
• Ability to work independently
• Helpful, resourceful and willing to help various teams succeed

Responsibilities

• Partner with our Product team to build framework details and controls for global security & privacy frameworks and standards
• Create detailed mappings between industry standard compliance frameworks like ISO 27001, SOC 2, HIPAA, and NIST 800-53
• Research customer and auditor feedback about issues with control mappings and evidence
• Translate legal requirements into security and privacy controls
• Respond to vendor security questionnaires
• Partner with Vanta’ns to respond to customer security questions
• Review and respond to security escalations from different tools and platforms
• Partner to help improve existing and launch new security and compliance processes, programs, and policies where needed
• Partner to respond to internal security-related questions and requests from Vanta’ns

Preferred Qualifications

• Interest or prior experience within compliance or data privacy preferred, but not required
• Security certifications and/or formal education preferred, but not required

Benefits

• Industry-competitive compensation
• 100% covered medical, dental, and vision benefits with dependents coverage
• 16 weeks fully-paid parental Leave for all new parents
• Health & wellness and remote workplace stipends
• 401(k) matching
• Flexible work hours and location
• Open PTO policy
• 9 paid holidays in the US
• Offices in SF, NYC, Dublin, and Sydney